On Wed, Sep 7, 2011 at 12:36 PM, Steve Jenkins <[email protected]> wrote:
> On Wed, Sep 7, 2011 at 8:57 AM, Wietse Venema <[email protected]> wrote:
>> This means they broke it (assuming you aren't doing special
>> processing for Mail.RU etc. destinations).
>
> Agreed. I generally test by sending a message to my GMail account. If
> it says "Signed by:" in the header details, I'm satisfied that I'm
> successfully sending mail with valid DKIM sigs. If anyone else says it
> fails, it's likely they're breaking it themselves. GMail isn't
> infallible, but they're reliable enough to depend on for testing.
If you're capable of capturing a copy of the mail, then I find it
useful to do a sniff test on some of our mail with little scripts
like:
$ cat -n dkim-verify.pl
1 # verify a message
2 use Mail::DKIM::Verifier;
3
4 # create a verifier object
5 my $dkim = Mail::DKIM::Verifier->new();
6
7 # read an email from stdin, pass it into the verifier
8 while (<>)
9 {
10 # remove local line terminators
11 chomp;
12 s/\015$//;
13
14 # use SMTP line terminators
15 $dkim->PRINT("$_\015\012");
16 }
17 $dkim->CLOSE;
18
19 # what is the result of the verify?
20 my $result = $dkim->result;
21
22 print "Result: $result\n";
